InfoSec Handlers Diary Blog

One of the Handlers here at the ISC reports seeing an increase in SSH attacks on non-standard ports. The traffic that is being seen is a brute force SSH attempt, and is more than just a connect, it is providing credentials in attempt to gain access. If anybody is seeing similar SSH attempts on non-standard ports, we'd love to take a look at any logs or packet captures related to this activity. These logs and packets can be reached at the "Contact Us" page.